Internal IT staff should be not be involved in the development of anti-fraud systems, consultants Detica has warned.
Companies should store and analyse data about their IT systems in order to tackle fraud, but they should not use their IT department to do it, according to David Porter, a director at Detica.
Businesses should instead construct data warehouses based on the data usually discarded by IT departments. This data can be searched to find abnormal behaviour which could suggest fraud.
Porter told an SAS Institute fraud detection forum: "There's not enough data mining being done like we see with marketing.
"From a fraud perspective this data is interesting because it shows when people log in and where and what they look at and print. It's good for finding abnormal behaviour.
"Fraud is the Cinderella part of the business: it doesn't get the money but the marketing people do and they have some technology that could be very interesting. The data warehouse should be used to record just about everything."
But Porter warned that companies should not use their internal IT staff to set up the project because they could be party to fraud.
"You should have a separate IT team to look after the projects," he said. "Internal IT people are a big risk. If you work in IT, you have the opportunity that most users won't have. It's not like they are bad or worse but they have the opportunity."
The National Hi-Tech Crime Unit has warned that IT staff could become involved with organised crime, either through threats and kidnapping or by being paid to hack business systems.
Found by calculating the strength of the material deep inside the crust of neutron stars
Can highlight in real-time the relevant regions of an image being described
Double legal trouble for Musk as he also faces civil lawsuit over renewed British pot-holer 'paedo' claims
Battery development could help boost performance of smartphones